Getting a Private Endpoint Details

Get information about the external key manager private endpoint.

• Console
• CLI
• API

• 1. Open the navigation menu , select Identity & Security, and then select Private Endpoints.
  2. In the Private Endpoints page, select a private endpoint name to open its details page.

  The Private Endpoint Information section displays the following information:

  • Compartment: The name of the compartment that contains the private endpoint.
  • OCID: The unique, Oracle-assigned ID of the vault.
  • Created: The date and time when you initially created the private endpoint.
  • Update: The date and time when you updated the private endpoint.
  • VCN: VCN identifier.
  • Subnet: Subnet identifier.
  • External Key Manager IP address: IP address identifier for the external key manager.
  • External Key Manager Port: Port identifier for the external key manager.

• Open a command prompt and run ooci kms ekm ekms-private-endpoint get to get a new private endpoint details:

  Command

  CopyTry It

  get -ekms-private-endpoint-id <pe-ocid> 

  For example:

  
  --ca-bundle "-----BEGIN CERTIFICATE-----\nMIIFrjCCA5agAwIBAgIQAsMYA04ijAErxlDri 6cIa/\n-----END CERTIFICATE-----",
  --compartment-id "ocid1.compartment.sample..aaaaaaaaiexample6mjdbzlsxf576zgtlbi3",
  --display-name "Example EKMS PE",
  --external-key-manager-ip 1.2.3.4,
  --subnet-id "ocid1.subnet.sample.sea.aaaaaaexamplenpse5gupw56s5",
  --freeform-tags {"key": "value"},
  --port 6758
  

  Avoid entering confidential information.

  For a complete list of flags and variable options for Vault CLI commands, see Command Line Reference.

• Use the GetEkmsPrivateEndpoint API to get private endpoint details for the private endpoint used for connecting OCI External KMS to an external key management system. Thales CipherTrust Manager is supported by OCI for External Key Management.

  Note
  
  Each region has a unique endpoint for create, update, and list operations for secrets. This endpoint is referred to as the control plane URL or secret management endpoint. Each region also has a unique endpoint for operations related to retrieving secret contents. This endpoint is known as the data plane URL or the secret retrieval endpoint. For regional endpoints, see the API Documentation.

  For information about using the API and signing requests, see REST API documentation and Security Credentials. For information about SDKs, see SDKs and the CLI.